SEARCH

  • [:en]Recent Posts[:af]Onlangse bydraes

  • [:en]Categories[:af]Kategorieë

  • [:en]Archives[:af]Argiewe

E-mail

« Older Entries
Newer Entries »

[:en]Phishing attack from compromised staff account with attached “Secure Message”[:]

Wednesday, May 6th, 2020

[:en]

With most students and personnel all working from home during the national lockdown, and with the reduced security (and watchfulness) of home computers and personnel/students in their home environment, and with many forced to use unfamiliar means of communication and collaboration like Teams, Zoom, Skype and Skype For Business, the environment is ripe for exploitation by phishers.

The following e-mail (with an infected attachment) is making its rounds at the moment from  a staff email.

If you get an email that look like the following do not open or respond to it. It is quite likely that the personnel doesn’t even know his account is compromised.

Please be careful when opening up attachments “sent” by colleagues especially if they are unannounced or the e-mail makes you feel a bit suspicious. Always trust your instincts.

[:]

Email

Tags:
Posted in E-mail, News, Security | Comments Off on [:en]Phishing attack from compromised staff account with attached “Secure Message”[:]

[:en]“Sextortion” scams[:]

Tuesday, April 28th, 2020

[:en]

There has been a resurgence of “sextortion” phishing scams recently but with a slight twist.

“Extortion phishing” or “sextortion” is an aggressive form of a phishing attack that targets potential victims in an e-mail demanding bitcoin in exchange for a promise of non-disclosure of an alleged sexual offence.

The aim of these sextortion e-mails is clear – to force their intended victims to pay up for their silence, or the footage will be shared on social networks. Ultimately this is a typically insidious scam that could easily snare an unsuspecting user.

This variant however has an added twist, in that the phishing scammers are displaying a stolen password (from other websites) that their victims use, to grab their victim’s attention.

It is usually those other websites (e,g,. hotmail, Instagram, Paycity or Facebook) that hackers use to gain access to our data, so changing those passwords are very important.

As in the example below we received earlier this week:

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Several students and personnel say that they have also received similar phishing e-mails, and that password that they had used were displayed in the subject line. They were all concerned that their network account was under attack.

If you receive such a mail, there is little danger to you UNLESS you

  1. respond to the sender
  2. still use that same password for other non-university accounts and use a variation of that password.

If it is an old password that they are displaying, then the danger to you is relatively small, but if you are still using it on a different website or application please change and update immediately.

[ARTICLE BY DAVID WILES]

[:]

Email

Posted in E-mail, Security | Comments Off on [:en]“Sextortion” scams[:]

[:en]Phishing emails, SMS and WhatApp messages offering payment relief during lock down[:]

Wednesday, April 1st, 2020

[:en]

A new potential threat has emerged as we enter the 2nd week of the national lock down and facing the beginning of the new month with bills  to be paid.

Phishers are already targeting the South African public with so-called COVID-19 phishing scams, attaching malware infected attachments and encouraging victims to click on a link to download “important information about the COVID-19 pandemic”.

However this week’s scam involves emails, SMS and WhatsApp messages being sent with information about “Payment Relief” from South African banks.

While it is true that most major South African banks are offering payment relief measures to their customers, phishing scammers have grasped this opportunity and adapted their tactics to send emails with content like the following:

“Dear Valued Customer,

“At ABSA Bank, we realise that this is a difficult time for our customers and businesses whose financial means are being negatively affected. After careful consideration and engagements with The Minister of Finance the, Hon. Tito Titus Mboweni, we are pleased to offer you, as a valued customer, a once-off access to a comprehensive relief programme. Please click on the following link to see if you qualify for payment relief.

VERIFY YOUR ACCOUNT

This is a once-off offer made to selected customers and will close at midnight on 2 April 2020.”

This is one such e-mail, but similar scams with forged identities from other South African banks, as well as Whatsapp and SMS messages will also surface. Note the specific deadline and the call to verify your account. Your bank won’t ever ask you to verify your account by email and certainly won’t give you a day to make such a decision. 

If you need to make use of a relief programme, rather contact your bank directly than reply to an online message. 

Here is a collection of the current verified details for payment relief from South Africa’s 4 major banks:

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 [ARTICLE BY DAVID WILES]

[:]

Email

Posted in E-mail, Notices, Security | Comments Off on [:en]Phishing emails, SMS and WhatApp messages offering payment relief during lock down[:]

[:en]Sending emails to large groups[:af]E-pos aan groot groepe[:]

Monday, March 2nd, 2020

[:en]

Occasionally it is necessary to send emails to external students or other large groups of people who are not part of the sun domain. If you are currently using Outlook distribution lists we recommend that you switch to the much more user-friendly and functional Sympa mailing list management platform.

The reason for this is that Microsoft has started to limit the number of emails a sun email address can send to to 30 external email addresses per minute. Therefore, if you send to more recipients, Microsoft automatically blocks your account as their attempt to prevent spam. More detailed information on Microsoft’s policies regarding email limits, can be found on their website.

For many years the university has been using Sympa as mass mailing solution successfully. In fact, many of our staff and students use it to administer their lists. 

Sympa is a mailing list management (MLM) software and has its roots in the academic computing community in France. Its name, which is an acronym for Système de Multi-Postage Automatique (i.e. Automatic Mailing System), also means “nice” or “friendly” in French. We’re not sure exactly why the French decided to call their mailing list system “nice”, but we can confirm that it is “friendly” to use.

By using Sympa as a platform for your group emails, you will have better control over your emails and access to handy functions such as:

  • appoint one or several moderators;
  • manage subscriptions and unsubscriptions;
  • add a shared document web space at the subscribers’ disposal;
  • answer questions from subscribers and potential subscribers about the list
  • read the list archive;
  • search in the message archive;
  • review members of the list;

As you can see, Sympa offers much more functionality than your normal Outlook distribution list. Any staff member can use Sympa, simply go to https://sympa.sun.ac.za/sympa.
If you need any assistance in setting up your Sympa distribution list, please log a request for assistance on the ICT Partner Portal.

[:af]

Soms is dit nodig om e-pos te stuur aan eksterne studente of ander groot groepe mense wat nie deel is van die sun-domein nie. Indien jy tans Outlook verspreidingslyste gebruik, stel ons voor dat jy oorskakel na die veel vriendeliker en funksionele Sympa verspreidingslys bestuursplatform. 

Die motivering agter hierdie voorstel is dat Microsoft tans die aantal e-posse wat iemand kan stuur beperk tot 30 eksterne adresse per minuut. As jy dus na meer ontvangers stuur, sal Microsoft jou rekening outomaties blok as maatreël om gemorspos te voorkom. Meer detail oor Microsoft se beleid kan op hulle webwerf gelees word. 

Sympa is e-pos verspreidingslys bestuursagteware (MLM) en het ontstaan in die akademiese rekenaargemeenskap in Frankryk. Die naam is ʼn akroniem vir Système de Multi-Postage Automatique (i.e. Automatic Mailing System) en beteken ook “oulik” of “vriendelik” in Frans. Ons is nie heeltemal seker hoekom die Franse besluit het om hulle e-pos verspreidingstelsel “oulik” te noem nie, maar ons kan bevestig dat dit wel “vriendelik” is om te gebruik.

Deur Sympa te gebruik vir jou groep e-posse, sal jy beter beheer hê oor jou e-posse, asook toegang tot handige funksies soos:

  • stel een of meer moderators aan;
  • bestuur intekenings en uittekenings;
  • skep ʼn gedeelde dokument webspasie vir jou intekenaars;
  • antwoord vrae oor die lys van intekenaars en potensiële intekenaars;
  • lees die lys-argief;
  • soek in die boodskap-argief;
  • hersien die lyslede.

Soos jy kan sien, bied Sympa baie meer funksionaliteit as jou standaard Outlook verspreidingslys. 

Enige personeellid of student kan Sympa gebruik – gaan bloot na https://sympa.sun.ac.za/sympa en volg die instruksies. Indien jy enige hulp nodig het met die opstelling van jou Sympa verspreidingslys, teken asseblief `n versoek aan op die ICT Partner Portal.

 

[:]

Email

Tags: ,
Posted in Communication, E-mail | Comments Off on [:en]Sending emails to large groups[:af]E-pos aan groot groepe[:]

[:en]New warning banner for your email[:af]Nuwe waarskuwingsbanier vir jou e-pos[:]

Tuesday, February 4th, 2020

[:en]

The nature of cyber-attacks is always evolving and Information Technology, with the help of staff and students, has to do everything within our power to try and prevent them.

In an attempt to tighten cyber security on campus, we will soon provide a new warning which can identify the origin of an email. By establishing the origin of email, it’s easier to protect against cyber security risks such as malware, spoofing and phishing. 

From now on, every time you receive email from outside campus a yellow banner will be displayed at the top of your email:

Click for a larger image

 

Click for a larger version

When staff or students receive a potentially dangerous email which seems to have been sent from a colleague with a sun.ac.za address, they will immediately be able to see that it is, in fact, not from their colleague, but from an address outside the university.

Just keep in mind that the banner does not indicate that the email is necessarily a security risk, but that the possibility exists and that you need to be extra careful when responding to it.

We will continuously assess the effectiveness of this decision and reconsider if necessary. For any additional enquiries, please send an email to help@sun.ac.za.

[:af]

Die aard van kuberaanvalle verander voortdurend en gevolglik moet Informasietegnologie, met die hulp van personeel en studente, alles in ons vermoë doen om dit te probeer bekamp.

In ’n poging om kubersekuriteit op te skerp op kampus, sal ons dus binnekort ’n nuwe waarskuwing verskaf wat die oorsprong van e-posse identifiseer. Deur die oorsprong te identifiseer is dit makliker om personeel en studente te beskerm teen kuberrisiko’s soos malware, spoofing en phishing

Voortaan sal daar elke keer as jy ’n e-pos van buite kampus ontvang ’n geel banier bo-aan jou e-pos verskyn wat soos volg lyk:

Click for a larger image

Kliek vir `n groter weergawe

Indien personeel of studente dus ’n potensieel gevaarlike e-pos ontvang wat lyk asof dit vanaf ’n kollega met ’n sun.ac.za adres gestuur word, sal die leser dadelik kan sien dat dit in werklikheid van buite die universiteit gestuur is, en dus verdag is. 

Let daarop dat die banier nie noodwendig beteken dat die e-pos `n gevaarlik is nie, maar bloot dat die moontlikheid bestaan en dat jy, as ontvanger van die e-pos, ekstra versigtig moet wees. 

Ons sal die effektiwiteit van hierdie stap deurlopend evalueer en heroorweeg soos nodig. Vir enige verdere navrae, stuur asb. `n e-pos aan help@sun.ac.za.

[:]

Email

Posted in E-mail, General, Notices, Students | Comments Off on [:en]New warning banner for your email[:af]Nuwe waarskuwingsbanier vir jou e-pos[:]

« Older Entries
Newer Entries »